Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2629(POC) Untrim any live video on Facebook Authorization flaw Meta / Facebook Ahmad Talahmeh Bug Bounty2021-04-182023-06-13
2628Unauthorized access to admin setpassword page BY bypassing 403 Forbidden Authorization flaw NA Santosh Kumar Sha (@killmongar1996) Bug Bounty2021-04-182023-06-13
2615Telegram bug bounties: XSS, privacy issues, official bot exploitation and more… XSS Authorization flaw DoS NA Davide Bug Bounty2021-04-222023-06-13
2571Workplace by Facebook | Unauthorized access to companies environment — $27,5k Authorization flaw Logic flaw IDOR Meta / Facebook Marcos Ferreira (@mvinni_) Bug Bounty2021-05-072023-06-13
2497How I could have accessed all your private videos/photos saved inside your device without even unlocking it? Authorization flaw Logic flaw Meta / Facebook Samip Aryal (@samiparyal_) Bug Bounty2021-06-062023-06-13
2494How i was able to bypass parental pin of showmax Authorization flaw Showmax abdulsec (@moodiAbdoul) Bug Bounty2021-06-092023-06-13
2485[Google VRP] Privilege escalation on https://dialogflow.cloud.google.com Authorization flaw Logic flaw Google lalka (@0x01alka) Bug Bounty2021-06-132023-06-13
2465Accessing Restricted Documents With Extra JSON Body Content Mass assignment Authorization flaw NA Imran Huda (@imranHudaA) Bug Bounty2021-06-182023-06-13
2415Part 2: Dive into Zoom Applications CSRF Account takeover Information disclosure Session expiration issue Authorization flaw Logic flaw Zoom Rakesh Thodupunoori (@rakesh_3895) Bug Bounty2021-07-132023-06-13
2401Facebook Vulnerability: $1500 for Removing Document Cover Authorization flaw IDOR Meta / Facebook Muhammad Sholikhin (@MuhammadLikhin) Bug Bounty2021-07-182023-06-13
2328How we was able to takeover whole organization via Privilege Escalation Privilege escalation Authorization flaw NA Yasser Mohammed (@boomneroli) Bug Bounty2021-08-132023-06-13
2288How did I earned 6000$ from tokens and scopes in one day Authorization flaw Privilege escalation NA Corraldev (@javier_corralg) Bug Bounty2021-08-272023-06-13
2232Bypassing GCP Org Policy with Custom Metadata Authorization flaw Google Kat Traxler (@NightmareJS) Bug Bounty2021-09-102023-06-13
2183Force Browsing bug at Facebook business plan ($500 Bounty) Authorization flaw Forced browsing Meta / Facebook Dewanand Vishal (@dewcode91) Bug Bounty2021-09-292023-06-13
2164Accessing Apple’s internal UAT Slackbot for fun and non-profit Authorization flaw Apple Shail Patel (@shail_official) Bug Bounty2021-10-072023-06-13
2049RocketChat - Monitor User Messages Authorization flaw Rocket.Chat Rojan Rijal (@uraniumhacker) Bug Bounty2021-11-252023-06-13
1991Hacked Google-Meet…??! Authorization flaw Google 7𝖍3𝖍4𝖈kv157 (@7h3h4ckv157) Bug Bounty2021-12-182023-06-13
1958Bypassing Identity-Aware Proxy - Google Cloud Vulnerability Authorization flaw Token leak OAuth Google SebLu Bug Bounty2021-12-302023-06-13
1947How i was able to bypass a Pin code Protection Authorization flaw NA Kerolos sameh (@xko2xx) Bug Bounty2022-01-032023-06-13
1914How i found “Broken Access Control Through out-of-sync setup” and got $1000 Broken Access Control Authorization flaw NA Mr Robert | Ahmed M Hassan (@Mr_Robert20) Bug Bounty2022-01-162023-06-13
1905How I messed up my own profile data Authorization flaw NA Himmat Singh Bug Bounty2022-01-202023-06-13
1874Access Control Violation – Wiki Page Creation Authorization flaw NA Nick Berrie (@machevalia) Bug Bounty2022-01-302023-06-13
1808403 forbidden bypass & Accessing config files using a header 403 bypass Authorization flaw NA vishnurajr Bug Bounty2022-02-172023-06-13
1796Send a Email to me and get kicked out of Google Groups !! — #GoogleVRP — A Feature that almost broke Google Groups !! Logic flaw Authorization flaw Google Sriram Kesavan (@sriramoffcl) Bug Bounty2022-02-202023-06-13
1753Demographic Misconfiguration on Facebook live Logic flaw Authorization flaw Meta / Facebook Prajwol Dhungana (@PrajwolDhunga14) Bug Bounty2022-03-092023-06-13